mySCADA myPRO fixes critical flaw
Take action: If you are using mySCADA myPRO, time to check for internet exposure of the platform. If it's visible on the Internet, lock it down immediately. Then plan for a fairly quick patch, because hardcoded passwords are extremely easy to be exploited as long as the attacker can reach the service. Which will happen eventually, no matter how good your security is - there will be someone that makes a mistake.
Learn More
mySCADA, a company specializing in industrial automation solutions based in Prague, Czech Republic has addressed a critical security vulnerability affecting its myPRO product.
The vulnerability, tracked as CVE-2024-4708 (CVSS v3.1 score of 9.8) is caused by the use of a hard-coded password. Exploitation of this vulnerability enables attackers to remotely execute code on affected devices, potentially compromising the system.
Affected product versions are all myPRO versions prior to 8.31.0
mySCADA recommends users update their myPRO software to version 8.31.0 to mitigate this vulnerability.
